Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/943732-9621-4a42-87da-b2de3ebf3e7e/1/pyLDrl3MXq37rkn2dAVFArXAzYI.roa
File: pyLDrl3MXq37rkn2dAVFArXAzYI.roa (raw, json)
Hash identifier: hD5M4NpEW8XNMVXSLQRvhEZnn4r+WfpviS6ayvuH8CE=
Subject key identifier: A7:22:C3:AE:5D:CC:5E:AD:FB:AE:49:F6:74:05:45:02:B5:C0:CD:82
Certificate issuer: /CN=f91a8223002e3124e5bb06e82d4f60a379b93dcd
Certificate serial: 01D76FCA
Authority key identifier: F9:1A:82:23:00:2E:31:24:E5:BB:06:E8:2D:4F:60:A3:79:B9:3D:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-RqCIwAuMSTluwboLU9go3m5Pc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/943732-9621-4a42-87da-b2de3ebf3e7e/1/pyLDrl3MXq37rkn2dAVFArXAzYI.roa
Signing time: Sat 01 Jan 2022 09:53:54 +0000
ROA not before: Sat 01 Jan 2022 09:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211734
IP address blocks: 185.147.137.0/24 maxlen: 24
185.147.136.0/24 maxlen: 24
185.147.136.0/22 maxlen: 22
2a07:3780::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30896074 (0x1d76fca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f91a8223002e3124e5bb06e82d4f60a379b93dcd
Validity
Not Before: Jan 1 09:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a722c3ae5dcc5eadfbae49f674054502b5c0cd82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:02:f1:bb:70:be:0e:40:b3:29:8b:70:7b:40:
b4:27:ca:67:99:e0:eb:f9:d2:3c:14:41:c1:58:49:
52:21:57:d4:e3:7a:8a:08:d5:be:42:8d:98:c2:5c:
71:c8:0d:ed:26:8f:a4:f5:89:90:4f:b7:34:c2:d7:
9c:6b:0f:44:7c:e0:12:bd:0f:2d:ca:0d:6c:f8:d2:
7e:40:81:e6:18:dc:a8:58:d2:6e:a8:b9:10:a1:64:
0e:88:4b:c8:65:d0:8c:3d:67:2e:6a:62:e2:06:bb:
dd:c9:ad:40:c0:67:6d:74:05:e7:51:d6:3f:89:54:
ce:74:c7:ea:1c:dc:ee:ff:14:41:84:ce:a3:9d:ee:
d1:fd:0e:c4:e4:5c:5c:89:6a:9d:01:2f:35:6f:7d:
d2:7a:35:4d:5c:f3:d0:c3:27:2b:4a:37:3d:c5:b4:
83:d9:0e:c5:cd:05:e6:f7:3a:46:40:5a:40:f0:52:
11:fe:45:bc:cf:19:e1:9a:40:f8:b0:1b:92:db:10:
cc:4a:ed:a1:d2:9e:87:b8:47:26:9a:09:14:64:d6:
66:c4:4b:5d:4e:7f:f3:f2:b2:a8:ec:41:8b:1a:de:
3d:02:a3:85:2f:53:a3:92:7c:de:bc:c1:d9:17:0e:
04:a7:b8:23:a6:7b:20:df:48:54:7c:d2:61:40:2c:
42:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:22:C3:AE:5D:CC:5E:AD:FB:AE:49:F6:74:05:45:02:B5:C0:CD:82
X509v3 Authority Key Identifier:
keyid:F9:1A:82:23:00:2E:31:24:E5:BB:06:E8:2D:4F:60:A3:79:B9:3D:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-RqCIwAuMSTluwboLU9go3m5Pc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/943732-9621-4a42-87da-b2de3ebf3e7e/1/pyLDrl3MXq37rkn2dAVFArXAzYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/943732-9621-4a42-87da-b2de3ebf3e7e/1/1-RqCIwAuMSTluwboLU9go3m5Pc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.136.0/22
IPv6:
2a07:3780::/29
Signature Algorithm: sha256WithRSAEncryption
01:2f:ca:0a:af:4f:92:c5:67:0b:4a:58:f8:b2:c4:21:0a:d6:
e6:f6:bc:4e:5c:4f:cd:1c:7f:eb:11:e2:ac:05:77:a4:b4:62:
89:63:33:d5:90:dc:b1:a8:2c:ee:d6:5c:fc:1a:48:e7:ce:25:
98:15:90:63:29:d2:94:15:a1:25:e3:ae:1c:48:8c:b1:35:b6:
25:70:64:59:7f:53:b4:bd:37:e8:6b:a3:e9:d2:f4:58:50:de:
4f:b8:1b:2d:ca:3a:9e:9f:03:45:68:2c:f7:3c:eb:6d:d3:3c:
8b:09:38:9a:4e:5c:85:08:d6:eb:cd:1e:4f:9a:e2:f5:1e:e4:
e5:b0:34:91:d0:7e:cf:f8:2a:67:5c:95:cd:a6:48:f0:18:ab:
11:4a:67:b4:cc:62:e8:bb:45:50:a4:bd:98:80:b6:2a:c7:ea:
c1:b2:cc:2a:af:1d:08:51:4c:88:72:cf:61:d3:f0:4a:66:3e:
a4:36:fa:d9:34:2d:03:e6:a5:a9:e4:d7:67:d7:bc:75:dd:f5:
73:aa:c7:98:1a:f2:a2:b0:50:0a:b9:82:eb:8f:e0:47:bb:7c:
88:55:7c:f0:d9:54:f3:3e:80:00:52:18:d4:23:04:75:a3:d5:
56:c2:e2:08:c5:62:0c:2d:23:9f:68:89:f2:88:dd:1e:81:f9:
57:59:b6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:47 2024 by rpki-client on console-ams.rpki-client.org